Ralf S. Engelschall
ea14a91f64
Move s_server -dcert and -dkey options out of the undocumented feature area
...
because they are useful for the DSA situation and should be recognized by the
users. Thanks to Steve for the original hint.
1999-02-25 11:26:26 +00:00
Ralf S. Engelschall
4b8f2ce648
Typo
1999-02-25 11:06:52 +00:00
Ralf S. Engelschall
90a52cecaf
Fix the cipher decision scheme for export ciphers: the export bits are *not*
...
within SSL_MKEY_MASK or SSL_AUTH_MASK, they are within SSL_EXP_MASK. So, the
original variable has to be used instead of the already masked variable.
Submitted by: Richard Levitte <levitte@stacken.kth.se>
Reviewed by: Ralf S. Engelschall
1999-02-25 11:03:18 +00:00
Ralf S. Engelschall
def9f43151
Fix 'port' variable from int' to
unsigned int' in crypto/bio/b_sock.c
...
Submitted by: Richard Levitte <levitte@stacken.kth.se>
Reviewed by: Ralf S. Engelschall
1999-02-25 10:54:27 +00:00
Ralf S. Engelschall
8aef252bf4
Change type of another md_len variable in pk7_doit.c:PKCS7_dataFinal()
...
from `int' to `unsigned int' because it's a length and initialized by
EVP_DigestFinal() which expects an `unsigned int *'.
Submitted by: Richard Levitte <levitte@stacken.kth.se>
Reviewed by: Ralf S. Engelschall
1999-02-25 10:47:24 +00:00
Ben Laurie
4f9b306ca7
Fix clearly untested "clever" hack.
1999-02-25 09:43:26 +00:00
Ralf S. Engelschall
74cc3698bd
More CVS ignore stuff...
1999-02-25 09:06:30 +00:00
Ralf S. Engelschall
a4ed5532a8
Don't hard-code path to Perl interpreter on shebang line of Configure
...
script. Instead use the usual Shell->Perl transition trick.
1999-02-25 08:48:52 +00:00
Ralf S. Engelschall
1b3b0a54d1
Remember good pointers to Montgomery multiplication algorithm
...
descriptions as pointed out by Dave Carman <carman@erols.com>
1999-02-25 08:00:57 +00:00
Ralf S. Engelschall
7be304acdb
Make `openssl x509 -noout -modulus' functional also for DSA certificates (in
...
addition to RSA certificates) to match the behaviour of `openssl dsa -noout
-modulus' as it's already the case for `openssl rsa -noout -modulus'. For RSA
the -modulus is the real "modulus" while for DSA currently the public key is
printed (a decision which was already done by `openssl dsa -modulus' in the
past) which serves a similar purpose. Additionally the NO_RSA no longer
completely removes the whole -modulus option; it now only avoids using the RSA
stuff. Same applies to NO_DSA now, too.
1999-02-24 17:17:31 +00:00
Dr. Stephen Henson
6b313a7365
Remove debugging fprintf from req.c and fix the code so it properly skips over
...
the first leading XXX. in the DN.
1999-02-24 00:14:21 +00:00
Ben Laurie
1745a3fb9f
Code for reliable BIO.
1999-02-23 21:45:23 +00:00
Ben Laurie
55ab3bf7f9
Add reliable BIO.
1999-02-23 21:44:34 +00:00
Ben Laurie
15799403ad
Fix more warnings.
1999-02-23 12:53:49 +00:00
Ralf S. Engelschall
3a1daca9ef
Get rid of a nasty debugging message which was forgotten here...
1999-02-23 08:53:04 +00:00
Ralf S. Engelschall
f2f351ce9c
Fix usage message on gendsa:
...
1. The dsaparam argument is mandatory and not optional
2. Add a little text what this actually is: a filename
1999-02-23 08:52:20 +00:00
Ralf S. Engelschall
04fa4cb721
Make gcc -Wall happy ("might be used uninitialized...")
1999-02-23 07:47:30 +00:00
Dr. Stephen Henson
a43aa73e3b
Redo the way 'req' and 'ca' add objects: add support for oid_section.
1999-02-23 00:07:46 +00:00
Ben Laurie
0849d13811
Add syslogging BIO.
1999-02-22 21:21:08 +00:00
Dr. Stephen Henson
e527ba09a6
Various changes to make this stuff compile under Win32 and VC++ with and
...
without -debug option to mk1mf.pl. Change _export to is_export (_export is
a reserved word under VC++). Add yucky function prototype function pointer
casts. Sanitise the included files in crypto/x509v3.
Also changed ssleay.exe target to openssl.exe
1999-02-22 01:26:40 +00:00
Ben Laurie
60e31c3a4b
More stuff for new TLS ciphersuites.
1999-02-21 21:58:59 +00:00
Ben Laurie
a040ea8251
Undo a couple of kludges.
1999-02-21 20:07:41 +00:00
Ben Laurie
06ab81f9f7
Add support for new TLS export ciphersuites.
1999-02-21 20:03:24 +00:00
Ben Laurie
abf87f79f7
Fix warning.
1999-02-21 20:01:39 +00:00
Dr. Stephen Henson
deff75b634
Add preliminary user level config documentation for extension stuff. Programming
...
info will come later...
Feel free to reformat and tidy this up...
1999-02-21 17:41:08 +00:00
Dr. Stephen Henson
0c8a1281d0
Make RSA_NO_PADDING really use no padding.
...
Submitted by: Ulf Moeller <ulf@fitug.de>
1999-02-21 17:39:07 +00:00
Ralf S. Engelschall
189b6a6062
Remember some open issues and available patches
1999-02-21 12:33:58 +00:00
Dr. Stephen Henson
aa066b9e6e
Add more functionality to issuer alt name and subject alt name. New options
...
to include email addresses from DN and copy details from issuer certificate.
Include examples in openssl.cnf, update Win32 ordinals.
1999-02-21 01:46:45 +00:00
Ralf S. Engelschall
a67a9694f7
Ok, propose a release date of March 15th with a code freeze a few days before
...
so we have enough time for final testing and tarball rolling.
1999-02-20 16:50:53 +00:00
Ben Laurie
57c86f79bb
Fix a warning.
1999-02-20 16:36:28 +00:00
Ben Laurie
4004dbb7f6
Generate errors when public/private key check is done.
1999-02-20 11:50:07 +00:00
Dr. Stephen Henson
c74f1eb9bd
Preliminary support for reason code CRL extension.
1999-02-20 01:15:41 +00:00
Dr. Stephen Henson
ee5425d97d
Patch so the new crl stuff actually compiles this time :-) Also update the
...
Win32 ordinals.
1999-02-19 02:26:21 +00:00
Dr. Stephen Henson
0ca5f8b15c
Overhaul 'crl' application, add a proper X509_CRL_print function and start
...
to support CRL extensions.
1999-02-19 01:29:29 +00:00
Ben Laurie
6b056c414d
Fix case of new functions in error files.
1999-02-18 18:26:42 +00:00
Dr. Stephen Henson
0be9747b39
Oops! Remeber to include the other patches this time...
1999-02-17 23:22:57 +00:00
Dr. Stephen Henson
3d8accc3ae
Fuller authority key id support, partial support for private key usage extension
...
and really fix the ASN.1 IMPLICIT bug this time :-)
1999-02-17 23:21:01 +00:00
Ben Laurie
a49498969e
Add OAEP.
1999-02-17 21:11:08 +00:00
Dr. Stephen Henson
d08d8da432
Added code to GENERAL_NAME with support for more options and preliminary
...
support for assignment in config files.
1999-02-17 03:09:58 +00:00
Mark J. Cox
413c4f45ed
Updates to the new SSL compression code
...
[Eric A. Young, (from changes to C2Net SSLeay, integrated by Mark Cox)]
Fix so that the version number in the master secret, when passed
via RSA, checks that if TLS was proposed, but we roll back to SSLv3
(because the server will not accept higher), that the version number
is 0x03,0x01, not 0x03,0x00
[Eric A. Young, (from changes to C2Net SSLeay, integrated by Mark Cox)]
Submitted by:
Reviewed by:
PR:
1999-02-16 09:22:21 +00:00
Dr. Stephen Henson
a8236c8c32
Fix various memory leaks in SSL, apps and DSA
1999-02-15 21:05:21 +00:00
Dr. Stephen Henson
1750ebcba9
Patch to Configure script. For some reason the BN_ASM part was truncated to
...
the first word which broke (at least) the Linux compile. Hopefully this wont
break other platforms.
1999-02-14 22:47:21 +00:00
Dr. Stephen Henson
5236efdbf5
Update error codes.
1999-02-14 17:21:14 +00:00
Dr. Stephen Henson
388ff0b076
Add support for raw extensions. This means that you can include the DER encoding
...
of an arbitrary extension: e.g. 1.3.4.5=critical,RAW:12:34:56 Using this
technique currently unsupported extensions can be generated if you know their
DER encoding. Even if the extension is supported in future the raw extension
will still work: that is the raw version can always be used even if it is a
supported extension.
1999-02-14 16:48:22 +00:00
Ralf S. Engelschall
6013fa8395
Make sure latest Perl versions don't interpret some generated C array as Perl
...
array code in the crypto/err/err_genc.pl script.
Submitted by: Lars Weber <3weber@informatik.uni-hamburg.de>
Reviewed by: Ralf s. Engelschall
1999-02-14 13:21:52 +00:00
Dr. Stephen Henson
e3577ba07b
Convert ms/do_ms.bat to DOS EOL format of DOS chokes on it.
1999-02-14 02:37:45 +00:00
Dr. Stephen Henson
5c00879ef0
More Win32 fixes and upsdate INSTALL.W32 documentation.
1999-02-14 00:40:13 +00:00
Dr. Stephen Henson
9becf66621
Oops... add other changes this time too.
1999-02-13 23:13:32 +00:00
Dr. Stephen Henson
e2d795cb96
Modify configure script to generate some files that Win32 needs and new
...
script that does the same as 'make files'.
1999-02-13 23:12:30 +00:00
Ben Laurie
08853ba82d
Finally(?) fix DES stuff.
1999-02-13 21:49:34 +00:00